Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2022-3640
HistoryOct 21, 2022 - 3:15 p.m.

CVE-2022-3640

2022-10-2115:15:09
CWE-119
CWE-416
[email protected]
web.nvd.nist.gov
123
11
cve-2022-3640
vulnerability
linux kernel
bluetooth
use after free
patch
security issue

8.8 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.9%

JSON

A vulnerability, which was classified as critical, was found in Linux Kernel. Affected is the function l2cap_conn_del of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211944.

Affected configurations

NVD
Node
linuxlinux_kernelRange4.9.3264.9.333
OR
linuxlinux_kernelRange4.14.2914.14.299
OR
linuxlinux_kernelRange4.19.2554.19.265
OR
linuxlinux_kernelRange5.4.2095.4.224
OR
linuxlinux_kernelRange5.10.1355.10.154
OR
linuxlinux_kernelRange5.15.595.15.79
OR
linuxlinux_kernelRange5.18.166.0.8
Node
fedoraprojectfedoraMatch35
OR
fedoraprojectfedoraMatch36
OR
fedoraprojectfedoraMatch37
Node
debiandebian_linuxMatch10.0

CNA Affected

[
  {
    "vendor": "Linux",
    "product": "Kernel",
    "versions": [
      {
        "version": "n/a",
        "status": "affected"
      }
    ]
  }
]

Social References

More

Related

fedora 3
openvas 29
cvelist 1
redhatcve 1
prion 1
cnvd 1
ubuntucve 1
nessus 47
debiancve 1
nvd 1
oraclelinux 4
ubuntu 20
redhat 12
osv 23
debian 2
suse 1
almalinux 3
ibm 3
fedora
fedora
[SECURITY] Fedora 35 Update: kernel-6.0.8-100.fc35
2022-11-15 01:28:15
[SECURITY] Fedora 36 Update: kernel-6.0.8-200.fc36
2022-11-15 01:24:33
[SECURITY] Fedora 37 Update: kernel-6.0.8-300.fc37
2022-11-15 01:17:47
openvas
openvas
Fedora: Security Advisory for kernel (FEDORA-2022-65a0a3504a)
2022-11-15 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2022-64ab9153c0)
2022-11-15 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2022-7aadaadebc)
2022-11-15 00:00:00
cvelist
cvelist
CVE-2022-3640 Linux Kernel Bluetooth l2cap_core.c l2cap_conn_del use after free
2022-10-21 00:00:00
redhatcve
redhatcve
CVE-2022-3640
2022-11-03 06:02:58
prion
prion
Design/Logic Flaw
2022-10-21 15:15:00
cnvd
cnvd
Linux kernel resource management error vulnerability (CNVD-2022-72086)
2022-10-25 00:00:00
ubuntucve
ubuntucve
CVE-2022-3640
2022-10-21 00:00:00
nessus
nessus
Fedora 36 : kernel (2022-64ab9153c0)
2022-12-22 00:00:00
Fedora 35 : kernel (2022-65a0a3504a)
2022-12-22 00:00:00
Ubuntu 22.10 : Linux kernel vulnerabilities (USN-5850-1)
2023-02-09 00:00:00
debiancve
debiancve
CVE-2022-3640
2022-10-21 15:15:09
nvd
nvd
CVE-2022-3640
2022-10-21 15:15:09
oraclelinux
oraclelinux
Unbreakable Enterprise kernel-container security update
2023-02-14 00:00:00
Unbreakable Enterprise kernel security update
2023-02-13 00:00:00
kernel security, bug fix, and enhancement update
2023-05-15 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-02-09 00:00:00
Linux kernel (Azure) vulnerabilities
2023-02-16 00:00:00
Linux kernel (Azure CVM) vulnerabilities
2023-03-02 00:00:00
redhat
redhat
(RHSA-2024:2621) Important: kernel security, bug fix, and enhancement update
2024-04-30 16:31:58
(RHSA-2024:1877) Moderate: kernel security and bug fix update
2024-04-18 00:58:28
(RHSA-2024:2664) Important: OpenShift Container Platform 4.15.12 security update
2024-05-09 13:37:09
osv
osv
linux-aws-5.4, linux-gcp, linux-gcp-5.4, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-oracle-5.4 vulnerabilities
2023-02-15 20:03:17
linux, linux-aws, linux-azure, linux-azure-5.4, linux-gkeop, linux-kvm, linux-oracle, linux-raspi, linux-raspi-5.4 vulnerabilities
2023-02-09 18:26:39
linux-azure-fde vulnerabilities
2023-03-02 15:48:03
debian
debian
[SECURITY] [DLA 3244-1] linux-5.10 security update
2022-12-22 13:40:03
[SECURITY] [DLA 3245-1] linux security update
2022-12-23 22:16:58
suse
suse
Security update for the Linux Kernel (important)
2022-11-08 00:00:00
almalinux
almalinux
Important: kernel security, bug fix, and enhancement update
2023-05-09 00:00:00
Important: kernel-rt security and bug fix update
2023-05-09 00:00:00
Important: kernel security, bug fix, and enhancement update
2023-11-14 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Spring, Tomcat, Jackson, sudo, and Linux kernel can affect IBM Spectrum Protect Plus
2024-03-20 18:36:29
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2023-12-18 18:02:34
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-05-09 12:31:16

8.8 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.9%

JSON
Related for CVE-2022-3640
fedora3openvas29cvelist1redhatcve1prion1cnvd1ubuntucve1nessus47debiancve1nvd1oraclelinux4ubuntu20redhat12osv23debian2suse1almalinux3ibm3